Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
internet security vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-2511
Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote malicious users to create and overwrite arbitrary files via a .. (dot dot) in the argument to the Sa...
Ca Internet Security Suite Plus 2008
1 EDB exploit
2.1
CVSSv2
CVE-2011-1327
The Keystroke Encryption feature in Trend Micro Internet Security 2009 (aka Virus Buster 2009 and PC-cillin 2009) does not completely encrypt passwords, which allows local users to obtain sensitive information by leveraging a keylogger.
Trendmicro Trend Micro Internet Security 2009
4.3
CVSSv2
CVE-2008-5427
Norton Antivirus in Norton Internet Security 15.5.0.23 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which allows remote malicious users to cause a de...
Symantec Norton Internet Security 2008 15.5.0.23
4.9
CVSSv2
CVE-2018-10098
In MicroWorld eScan Internet Security Suite (ISS) for Business 14.0.1400.2029, the driver econceal.sys allows a non-privileged user to send a 0x830020E0 IOCTL request to \\.\econceal to cause a denial of service (BSOD).
Escanav Escan Internet Security Suite 14.0.1400.2029
4.4
CVSSv2
CVE-2007-5043
Kaspersky Internet Security 7.0.0.125 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to (1) cause a denial of service (crash) and possibly gain privileges via the NtCreateSection kernel SSDT hook...
Kaspersky Lab Kaspersky Internet Security 7.0.0.125
4.9
CVSSv2
CVE-2018-9151
A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030.
Kingsoft Internet Security 9 Plus 2010.06.23.247
7.2
CVSSv2
CVE-2022-25949
The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow.
Kingsoft Internet Security 9 Plus 2010.06.23.247
1 Github repository
7.2
CVSSv2
CVE-2017-6417
Code injection vulnerability in Avira Total Security Suite 15.0 (and previous versions), Optimization Suite 15.0 (and previous versions), Internet Security Suite 15.0 (and previous versions), and Free Security Suite 15.0 (and previous versions) allows a local malicious user to by...
Avira Optimization Suite
Avira Free Security Suite
Avira Internet Security Suite
Avira Total Security Suite
1 Article
2.1
CVSSv2
CVE-2016-4329
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.
Kaspersky Total Security 16.0.0.614
Kaspersky Internet Security 16.0.0.614
Kaspersky Anti-virus 16.0.0.614
6.8
CVSSv2
CVE-2018-8090
Quick Heal Total Security 64 bit 17.00 (QHTS64.exe), (QHTSFT64.exe) - Version 10.0.1.38; Quick Heal Total Security 32 bit 17.00 (QHTS32.exe), (QHTSFT32.exe) - Version 10.0.1.38; Quick Heal Internet Security 64 bit 17.00 (QHIS64.exe), (QHISFT64.exe) - Version 10.0.0.37; Quick Heal...
Quickheal Antivirus Pro 17.00
Quickheal Internet Security 17.00
Quickheal Total Security 17.00
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »